logo
DATABASE RESOURCES PRICING ABOUT US

OracleVM 3.3 : Unbreakable / etc (OVMSA-2016-0175)

Description

The remote OracleVM system is missing necessary patches to address critical security updates : - Revert 'i40e: Set defport behavior for the Main VSI when in promiscuous mode' (Jack Vogel) [Orabug: 22683573] - mlx4: avoid multiple free on id_map_ent (Wengang Wang) - xen-netfront: cast grant table reference first to type int (Dongli Zhang) - xen-netfront: do not cast grant table reference to signed short (Dongli Zhang) - RDS: Drop the connection as part of cancel to avoid hangs (Avinash Repaka) [Orabug: 25045360] - sctp: validate chunk len before actually using it (Marcelo Ricardo Leitner) [Orabug: 25142879] (CVE-2016-9555) - mpi: Fix NULL ptr dereference in mpi_powm [ver #3] (Andrey Ryabinin) [Orabug: 25154098] (CVE-2016-8650) (CVE-2016-8650)


Related